• Journal of KIISE:Software and Applications
• /
• v.34 no.7
• /
• pp.635-645
• /
• 2007

Component technology has been widely accepted as an effective way for building software systems with reusable components, and Microsoft (MS) .NET is one of the recent representative component technologies. Model Driven Architecture (MDA) is a new development paradigm which generates software by transforming design models automatically and incrementally. Transformation of structural models in MDA has been successfully applied. However, transformation of dynamic models and pervasive services, such as transaction service, security service, synchronization service and object pooling are largely remains as an area for further research. The recent enterprise system has multi tier distributed architecture, and the functionality of early mentioned pervasive services is essential for this architecture. .NET platform can implement Component Object Model+ (COM+) component for supporting pervasive services by specify Attribute code. In this paper, we specify the functionalities of the COM+ component offering pervasive services, and then those functionalities are defined by UML profile. By using the profile, the Platform Specific Model (PSM) for .NET/C# is specified, and .NET components are automatically generated through our tool. The development productivity, extensibility, portability, and maintenance of software can be dramatically improved by using of the proposed methods.

• Journal of Platform Technology
• /
• v.9 no.3
• /
• pp.3-17
• /
• 2021

Advanced persistent threat (APT) attacks are attacks aimed at a particular entity as a set of latent and persistent computer hacking processes. These APT attacks are usually carried out through various methods, including spam mail and disguised banner advertising. The same name is also used for files, since most of them are distributed via spam mail disguised as invoices, shipment documents, and purchase orders. In addition, such Infostealer attacks were the most frequently discovered malicious code in the first week of February 2021. CDR is a 'Content Disarm & Reconstruction' technology that can prevent the risk of malware infection by removing potential security threats from files and recombining them into safe files. Gartner, a global IT advisory organization, recommends CDR as a solution to attacks in the form of attachments. There is a program using CDR techniques released as open source is called 'Dangerzone'. The program supports the extension of most document files, but does not support the extension of HWP files that are widely used in Korea. In addition, Gmail blocks malicious URLs first, but it does not block malicious URLs in mail systems such as Naver and Daum, so malicious URLs can be easily distributed. Based on this problem, we developed a 'Dangerzone' program that supports the HWP extension to prevent APT attacks, and a Chrome extension that performs URL checking in Naver and Daum mail and blocking banner ads.

• Analyses & Alternatives
• /
• v.4 no.1
• /
• pp.63-87
• /
• 2020

This article not only theoretically explores the necessity and effect of constructive minilateralism and subregionalism in Northeast Asia, but also delves into a series of practical solutions from viewpoint of seeking common ground while reserving differences in this region. The main contents are as follows: First, the various obstacles that hinder the formation of regionalism, subregionalism and minilateralism in the Northeast Asia are discussed. That is to say, geopolitical realism, My Country First ideology, exclusive nationalism in the socio-historical context, and North Korea's latest provocations, etc. Second, this article explores the philosophy and basic principles of realizing Northeast Asia regionalism and minilateralism. Third, in the 21st century, Northeast Asia becomes the center of the world. It examines the core points, controversial focus and platform for building sub regionalism in the region. Finally, based on the institutional platform such as minilateralism and sub regionalism, the various ideas and practical plans of cross-border cooperation among major countries in Northeast Asia were discussed. Because there are a lot of obstacles, so first of all it is more appropriate to promote economic or functional minilateralism or sub regionalism than multilateral cooperation. In order to promote the formation of regionalism and minilateralism in Northeast Asia, the issues to be considered are as follows: First, for the sake of leading regional solidarity and minilateral economic cooperation, it is advisable for China, as a regional economic power, to implement a stable and responsible diplomacy. Secondly, regional solidarity based on credible politics and security should be promoted for a long time beyond the level of economic cooperation. Third, the primary prerequisite for the realization of Northeast Asian regionalism is that in the process of denuclearization of North Korea, the stability and peace mechanism of the Korean Peninsula should be established. Fourth, with the continued hegemonic competition between the United States and China in Northeast Asia, under the circumstance that countries in the region are pushed into so-called "East Asian Paradox", it is profoundly important for them to consider transition from the hostile relationship as the "Thucydides trap" to the order of "coexistence" in which competition and cooperation run side by side, and the two countries should explore a conversion plan for the foreign policy line. This mutual cooperation and peaceful coexistence of the US-China relationship will create a friendly atmosphere for the formation of regionalism in Northeast Asia. In the future, the cooperation of minilateralism in Northeast Asia will break the existing conflict between the maritime forces and the continental forces in order to promote peace. And along with the philosophy that "peace is economy", recent policies of common prosperity as the framework, such as China's "Belt and Road Initiative", North Korea's "Special Zone and Development Zone Policy", Russia's "New Eastern Policy", Japan's participation in the Belt and Road Initiative and South Korea's The "Korean Peninsula New Economy Map" are organically linked and it should promote the so-called "networked regionalism".

• The Journal of Korea Institute of Information, Electronics, and Communication Technology
• /
• v.16 no.1
• /
• pp.24-32
• /
• 2023

The current Private 5G use procedure goes through the step of application examination, use and usage inspection, and can be divided in to application, examination step as a procedure before frequency allocation, and use, usage inspection step as a procedure after frequency allocation. Various types of documents are required to apply for a Private 5G, and due to the document screening process and radio station inspection for using Private 5G frequencies, the procedure for Private 5G applicants to use Private 5G is complicated and takes a considerable amount of time. In this paper, we proposed Frequency Allocation Process for Private 5G using a blockchain platform, which is fast and simplified than the current procedure. Through the use of a blockchain platform and NFT (Non-Fungible Token), reliability and integrity of the data required in the frequency allocation process were secured, and security of frequency usage information was maintained and a reliable Private 5G frequency allocation process was established. Also by applying the RPA system that minimizes human intervention, fairness was secured in the process of allocating Private 5G. Finally, the frequency allocation process of Private 5G based on the Ethereum blockchain was performed though a simulation.

• Journal of Platform Technology
• /
• v.11 no.2
• /
• pp.39-53
• /
• 2023

Non-installation program (hereinafter referred to as "portable program") is a program that can be used without an installation process, unlike general software. Since there is no separate installation process, portable programs have high mobility and are used in various ways. For example, when initial setup of multiple PCs is required, a portable program can be stored on one USB drive to perform initial setup. Alternatively, when a problem occurs with the PC and it is difficult to boot normally, Windows PE can be configured on the USB drive and portable programs can be stored for PC recovery. And the portable program does not directly affect PC settings, such as changing registry values, and does not leave a trace. This means that the portable program has high security. If a portable program is deleted after using it, it is difficult to analyze behavior in a general way. If a user used a portable program for malicious behavior, analysis in a general way has limitations in collecting evidence. Therefore, portable programs must have a new way of behavioral analysis that is different from ordinary installation software. In this paper, after installing the Windows 10 operating system on a virtual machine, we proceed with the scenario with a portable program of Opera and Notepad++. And we analyze this in various ways such as file analysis of the operating system and memory forensics, collect information such as program execution time and frequency, and conduct specific behavioral analysis of user.

• The Journal of the Convergence on Culture Technology
• /
• v.10 no.3
• /
• pp.891-899
• /
• 2024

The Fourth Industrial Revolution is centered on a personalized demand fulfillment economy and is all about transformation and flexible processing that can deliver what customers want in real time across space and time. This paper implements the construction and operation of a packaging platform that can instantly procure the required packaging products based on real-time orders and evaluates its performance. The components of customer satisfaction are flexible and dependent on the situation which requires efficient management of enterprise operational processes based on an e-SCM platform. An OMS optimized for these conditions plays an important role in maximizing and differentiating the efficiency of a company's operations and improving its cost advantage. OMS is a system of mass customization that provides efficient MOT(Moment of Truth) logistics services to meet the eco-friendly issues of many individual customers and achieve optimized logistics operation goals to enhance repurchase intentions and sustainable business. OMS precisely analyzes the collected data to support information and decision-making related to efficiency, productivity, cost and provide accurate reports. It uses data visualization tools to express data visually and suggests directions for improvement of the operational process through statistics and prediction analysis.

• International Journal of Computer Science & Network Security
• /
• v.21 no.8
• /
• pp.71-78
• /
• 2021

The relevance of research provides the necessity to identify the basic problems in the public governance sphere and information technology relations, forasmuch as understanding such interconnections can indicate the consequences of the development and spreading information technologies. The purpose of the research is to outline the issues of applying information technologies in public governance sphere. 500 civil servants took part in the survey (Ukraine). A two-stage study was conducted in order to obtain practical results of the research. The first stage involved collecting and analyzing the responses of civil servants on the Mentimeter online platform. In the second stage, the administrator used the SWOT-analysis system. The tendencies in using information technologies have been determined as follows: the institutional support development; creation of analytical portals for ensuring public control; level of accountability, transparency, activity of civil servants; implementation of e-government projects; changing the philosophy of electronic services development. Considering the threats and risks to the public governance system in the context of applying information technologies, the following aspects generated by societal requirements have been identified, namely: creation of the digital bureaucracy system; preservation of information and digital inequality; insufficient level of knowledge and skills in the field of digital technologies, reducing the publicity of the state and municipal governance system. Weaknesses of modern public governance in the context of IT implementation have been highlighted, namely: "digitization for digitalization"; lack of necessary legal regulation; inefficiency of electronic document management (issues caused by the imperfection of the interface of reporting interactive forms, frequent changes in the composition of indicators in reporting forms, the desire of higher authorities to solve the problem of their introduction); lack of data analysis infrastructure (due to imperfections in the organization of interaction between departments and poor capacity of information resources; lack of analytical databases), lack of necessary digital competencies for civil servants. Based on the results of SWOT-analysis, the strengths have been identified as follows: (possibility of continuous communication; constant self-learning); weaknesses (age restrictions for civil servants; insufficient acquisition of knowledge); threats (system errors in the provision of services through automation); opportunities for the introduction of IT in the public governance system (broad global trends; facilitation of the document management system). The practical significance of the research lies in providing recommendations for eliminating the problems of IT implementation in the public governance sphere outlined by civil servants..

• The Journal of the Korea Contents Association
• /
• v.21 no.6
• /
• pp.1-11
• /
• 2021

The Neis System is a system integrating administrative information that was operated in elementary and secondary schools in Korea. Currently, this system is operated by a central server method and contains school administration information and important educational information of students. Among student information, the student life record contains important information for a student to advance to a higher level institution, but problems such as information leakage or manipulation may occur due to malicious attacks. In this paper, we propose a hybrid blockchain system that combines the server and blockchain technology managed by the existing Neis system. The proposed system records the query information of the database in a block when student information is accessed. When a request for correction of student information or issuance of a certificate is received, the query of the blockchain, the information in the database, and the student's key value are checked to determine whether the information has been leaked or manipulated, and only if the data is normal, the request for revision of the record is performed. This process is more secure than the existing central server because it checks the manipulation of data through the blockchain. The proposed system was implemented on the Ethereum platform, and the query information of the blockchain was experimentally verified using smart contracts. This study contributes to enhancing the reliability of the Nice system by strengthening the security against forgery and alteration of student data by combining the existing Nice system with a block chain.

• Journal of the Korea Society for Simulation
• /
• v.30 no.4
• /
• pp.9-19
• /
• 2021

Electronic voting has been recognized as an alternative to complement the limitations of existing paper voting. At the same time, security concerns are being raised. This paper presents a blockchain-based electronic voting and survey system that can guarantee reliability. Our smart contract was created using Solidity on Ethereum which is a blockchain-based distributed computing platform, and the system was implemented in connection with the Javascript based user interface. In addition, in order to protect the personal information of participants, the system is generating hash of the personal data and storing the hash of users for the contract data. Since we exploited different kinds of languages for the system, we derived items of functionality testing and presented the functionality testing result. Moreover, we made use of the Chrome's performance evaluation functionality to see the response time of the blockchain-based system. In addition, we compared the performance with the system which has the same functionality on database. The contribution of this research is design and implementation of blockchain-based electronic voting system and presentation of the functionality and performance simulation result.

• Journal of Internet of Things and Convergence
• /
• v.9 no.3
• /
• pp.99-111
• /
• 2023

The purpose of this study is to identify the difficulties in business implementation that blockchain suppliers are experiencing, and to suggest ways to promote blockchain technology by solving them. First, industrial surveys of blockchain supply companies were collected. Next, a survey was conducted to confirm whether financial service users intend to use blockchain technology. The research results are as follows. First, in user characteristics, usefulness and innovation were found to have an effect on intention to use. In the technical characteristics, suitability and reliability were found to affect the intention to use. Second, in user characteristics, usefulness and innovativeness were found to affect the intention to use by mediating promotion conditions. In the technical characteristics, suitability and reliability were found to affect the intention to use by mediating the promotion conditions. Third, it was found that the new technology environment modulates the effect of ubiquity and innovativeness on the intention to use. The new technology environment was found to moderate the impact of security on intention to use. Fourth, it was found that the organizational environment moderates the effect of security and suitability on the intention to use. A plan to solve the difficulties of these blockchain suppliers and a plan to promote blockchain-based financial services are presented.